Re: Proposal "LUID"

Jamie Lokier (lk@tantalophile.demon.co.uk)
Sat, 15 Apr 2000 19:30:09 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Linda Walsh: "Re: Proposal "LUID""
Previous message: Linda Walsh: "Re: Proposal "LUID""

Linda Walsh wrote:
> I'm not talking about limits. I'm talking about an
> auditting ID that needs to be based on a when a user logs in
> and stays with them over any SUID or 'su' commands.

"telnet localhost" subverts this if you allow it (but you probably wouldn't).

This shows that you have to audit and possibly restrict all daemons that
permit uid changes anyway.

So why not just use the time-honoured "real user id"?

- Jamie

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Linda Walsh: "Re: Proposal "LUID""
Previous message: Linda Walsh: "Re: Proposal "LUID""